Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-1591

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2011-1591
Last Modified 13 Aug 2012 11:26:23
Published 29 Apr 2011 06:55:02
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2011-1591

Summary

Stack-based buffer overflow in the DECT dissector in epan/dissectors/packet-dect.c in Wireshark 1.4.x before 1.4.5 allows remote attackers to execute arbitrary code via a crafted .pcap file.

Vulnerable Systems

Application

  • Wireshark 1.4.0

  • Wireshark 1.4.1

  • Wireshark 1.4.2

  • Wireshark 1.4.3

  • Wireshark 1.4.4


References

CERT-VN - VU#243670

CONFIRM - https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5838

CONFIRM - https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5836

XF - wireshark-dect-bo(66834)

CONFIRM - http://www.wireshark.org/security/wnpa-sec-2011-06.html

VUPEN - ADV-2011-1106

VUPEN - ADV-2011-1022

OSVDB - 71848

MANDRIVA - MDVSA-2011:083

EXPLOIT-DB - 17195

EXPLOIT-DB - 17185

SECTRACK - 1025389

SECUNIA - 44374

SECUNIA - 44172

MLIST - [oss-security] 20110418 Re: Wireshark 1.2.16 / 1.4.5

MLIST - [oss-security] 20110418 Wireshark 1.2.16 / 1.4.5

FEDORA - FEDORA-2011-5529

FEDORA - FEDORA-2011-5569

FEDORA - FEDORA-2011-5621


Last Updated: 27 May 2016 10:56:23